Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: uOSYq4QfeNPBtZxMPClhV7TIb6SOUVKW3d6glzgV6oY=
Subject key identifier: 70:30:99:ED:F8:38:A7:76:C6:6A:29:DA:35:D9:D2:57:DC:4A:88:14
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019771BF68206B4B3CA7D6BBCC23CBDFEE22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1479
Signing time: Sun 15 Jun 2025 04:00:58 +0000
Manifest this update: Sun 15 Jun 2025 04:00:58 +0000
Manifest next update: Mon 16 Jun 2025 04:00:58 +0000
Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: asSo29qUF8I+ohUWnBnIxLxFOf4Ej1NUDawKV0+d0Jw=)
2: VIlea1HGjGCn_MVKwJV926-pJjE.roa (hash: A01QP610OFwth+XnetlpJQSsjmOQSdq9hALxJi5jMPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:bf:68:20:6b:4b:3c:a7:d6:bb:cc:23:cb:df:ee:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Jun 15 04:00:58 2025 GMT
Not After : Jun 16 04:00:58 2025 GMT
Subject: CN=703099edf838a776c66a29da35d9d257dc4a8814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b9:2d:92:28:68:3d:2e:e5:2d:4e:50:93:38:
1c:82:ad:0f:da:17:58:5d:94:9c:cd:78:50:74:6a:
9b:2a:a8:ce:96:c0:b5:13:e1:0a:d4:b6:56:12:9e:
6e:e2:2a:b1:b8:2b:a7:c1:c9:75:87:6c:45:e4:a9:
7c:8b:c9:b5:b2:5e:34:82:6b:11:b5:00:ca:43:4c:
91:a2:dd:91:a7:f9:02:71:a5:0e:18:bc:02:5a:6b:
db:98:38:cd:1c:41:79:32:e6:94:47:bd:44:3c:43:
52:65:08:bf:eb:de:96:f5:2c:9c:bd:80:91:9a:30:
75:06:21:d6:ae:fd:79:47:68:0d:4f:85:d7:4f:76:
d8:8c:d4:4d:31:d9:5b:5b:00:5d:c8:0e:03:09:11:
32:d2:79:cd:4e:ba:0c:2f:cc:32:bd:52:d0:79:c4:
1c:94:25:a7:b0:ca:c2:2f:26:f6:02:c8:a7:e1:54:
fa:a9:be:c2:d7:e0:05:23:25:24:36:b5:5d:bd:f3:
56:f3:ed:d7:06:f3:73:92:43:33:d6:2a:43:12:96:
8e:64:3b:99:c0:08:47:48:85:8e:cb:c4:49:43:c1:
8b:7a:4b:15:b5:00:92:6f:76:12:fa:08:23:8f:5c:
06:64:bb:9b:e0:e8:dc:74:c7:81:06:2f:6d:48:fd:
b3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:30:99:ED:F8:38:A7:76:C6:6A:29:DA:35:D9:D2:57:DC:4A:88:14
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:db:d9:36:30:07:d5:25:0b:42:b2:2f:f2:7a:f0:53:01:dc:
1a:bc:c7:7c:ab:18:8e:46:a4:21:bb:c2:4e:01:5a:cc:cb:e4:
fb:70:2f:69:dc:fd:dc:d8:44:34:13:2f:93:93:75:7a:7a:af:
80:92:cb:65:ed:35:ee:c3:d2:df:36:f4:4a:9f:1e:00:b5:9f:
5d:06:c0:db:81:d8:0e:54:65:46:9d:89:e6:90:94:91:eb:fb:
8c:71:1a:bd:54:6f:06:e7:e5:fe:cc:e7:00:50:ce:d8:96:26:
cd:ce:51:e3:d6:3b:8b:6a:09:2d:1c:a9:ca:07:57:23:53:5c:
b2:c3:53:d1:27:d3:dd:2b:f7:90:1a:68:0f:89:4c:8e:d4:09:
d6:8e:f9:cd:7d:03:81:e3:6e:f9:d8:46:6c:27:8a:3a:eb:70:
38:18:cb:26:53:7f:91:0b:d1:17:13:fb:3c:c3:48:9f:28:c5:
e1:0f:7f:02:0d:df:66:a4:24:31:3e:65:09:29:85:1a:16:4e:
8c:cc:e9:04:5d:f0:39:44:e4:e8:56:7d:c1:ed:61:dc:20:2c:
29:04:87:31:0a:df:97:a7:05:9e:11:29:33:65:76:2e:4f:98:
77:b0:12:c8:37:6f:e5:09:af:63:aa:e6:01:1e:5b:a7:e4:4f:
1b:08:ea:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxv2gga0s8p9a7zCPL3+4iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NzI4ZTliZDM3Mzk5ZGY5ZmZhZTU4N2JkMDY4ODRiMzUw
YTY1YjcwHhcNMjUwNjE1MDQwMDU4WhcNMjUwNjE2MDQwMDU4WjAzMTEwLwYDVQQD
Eyg3MDMwOTllZGY4MzhhNzc2YzY2YTI5ZGEzNWQ5ZDI1N2RjNGE4ODE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLktkihoPS7lLU5Qkzgcgq0P2hdY
XZSczXhQdGqbKqjOlsC1E+EK1LZWEp5u4iqxuCunwcl1h2xF5Kl8i8m1sl40gmsR
tQDKQ0yRot2Rp/kCcaUOGLwCWmvbmDjNHEF5MuaUR71EPENSZQi/696W9SycvYCR
mjB1BiHWrv15R2gNT4XXT3bYjNRNMdlbWwBdyA4DCREy0nnNTroML8wyvVLQecQc
lCWnsMrCLyb2Asin4VT6qb7C1+AFIyUkNrVdvfNW8+3XBvNzkkMz1ipDEpaOZDuZ
wAhHSIWOy8RJQ8GLeksVtQCSb3YS+ggjj1wGZLub4OjcdMeBBi9tSP2zswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHAwme34OKd2xmop2jXZ0lfcSogUMB8GA1UdIwQY
MBaAFDhyjpvTc5nfn/rlh70GiEs1CmW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzIt
ZjhjZmEzM2Q2ODRlLzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzItZjhjZmEzM2Q2ODRl
LzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe9vZNjAH
1SULQrIv8nrwUwHcGrzHfKsYjkakIbvCTgFazMvk+3Avadz93NhENBMvk5N1enqv
gJLLZe017sPS3zb0Sp8eALWfXQbA24HYDlRlRp2J5pCUkev7jHEavVRvBufl/szn
AFDO2JYmzc5R49Y7i2oJLRypygdXI1NcssNT0SfT3Sv3kBpoD4lMjtQJ1o75zX0D
geNu+dhGbCeKOutwOBjLJlN/kQvRFxP7PMNInyjF4Q9/Ag3fZqQkMT5lCSmFGhZO
jMzpBF3wOUTk6FZ9we1h3CAsKQSHMQrfl6cFnhEpM2V2Lk+Yd7ASyDdv5QmvY6rm
AR5bp+RPGwjqfw==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:03:54 2025 by rpki-client